Logical Methods in Computer Science 
Vol. 7 (2:6) 2011, pp. 1-32 
www.lmcs-online.org 



Submitted May 29, 2010 
Published May 5,2011 



AUTOMATED SYNTHESIS OF TABLEAU CALCULI* 

RENATE A. SCHMIDT AND DMITRY TISHKOVSKY 

School of Computer Science, The University of Manchester, UK 
e-mail address: {renate. Schmidt, dmitry.tishkovskyjQmanchester. ac.uk 



Abstract. This paper presents a method for synthesising sound and complete tableau 
calculi. Given a specification of the formal semantics of a logic, the method generates a set 
of tableau inference rules that can then be used to reason within the logic. The method 
guarantees that the generated rules form a calculus which is sound and constructively 
complete. If the logic can be shown to admit finite filtration with respect to a well-defined 
first-order semantics then adding a general blocking mechanism provides a terminating 
tableau calculus. The process of generating tableau rules can be completely automated and 
produces, together with the blocking mechanism, an automated procedure for generating 
tableau decision procedures. For illustration we show the workability of the approach for 
a description logic with transitive roles and prepositional intuitionistic logic. 



1. Introduction 

Tableau-based reasoning is popular in many areas of computer science and various branches 
of logic. For description logics and ontology reasoning they provide the main method for 
doing reasoning (see, for example, [5l|2l]; some recent work is [32l|30]). For modal logics 
and applications such as multi-agent systems tableau approaches are frequently used (see, 
for example, [IHl [l3l EU [29l [HI [23]; some recent work is [201 IS])- Tableau calculi have 
been developed and are being used for non-classical logics such as intuitionistic logic [T8[l3]. 
conditional logic [2], logics of metric and topology [27] and hybrid logics [371 [lOl [E] ■ Rather 
than developing tableau calculi one by one for individual logics, it is possible to develop 
tableau calculi in a systematic way for large classes of logics. This is evident from the 
literature in all these areas and studies such as [22l [iTl [3] . 

In this paper we want to go further and investigate the possibility to generate tableau 
calculi automatically from the specification of a logic. We assume that the logic of interest 
is defined by a high-level specification of its formal semantics. Our aim is to turn this into 
a set of inference rules that provides a sound and complete deduction calculus for the logic. 
Ideally we also want to be able to guarantee termination if the logic is decidable. Automated 
synthesis of calculi is a challenging problem and in general it is of course not possible to turn 
every specification of a logic into a sound, complete and terminating deduction calculus. 
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It is however possible to describe classes of logical specifications for which the problem is 
solvable uniformly. 

In previous work we have shown that it is possible to synthesise tableau calculi for 
modal logics by translation to first-order logic combined with first-order resolution [3T]. In 
this approach the semantic specification of a logic is transformed into clausal form and then 
a set of inference rules. Soundness and completeness of the generated calculus follows from 
the soundness and completeness of the simulating resolution refinement used. In the present 
paper we introduce another approach for generating tableau calculi. Rather than proceeding 
via simulation by resolution, our approach generates a tableau calculus directly from the 
specification of a logic. For traditional modal logics essentially the same tableau calculi 
can be obtained, but for more expressive dynamic modal logics and description logics the 
method in |31] produces calculi with introduction rules, whereas the method in this paper 
can be used to produce calculi with only elimination rules. 

In other previous work we have described a framework for turning sound and complete 
tableau calculi into decision procedures |^3j . The key for this framework is the unrestricted 
blocking mechanism from [32] which is added to the given calculus in order to turn it 
into a terminating calculus. Enhancing a tableau calculus with the unrestricted blocking 
mechanism produces a terminating tableau calculus, whenever the logic can be shown to 
admit finite filtration with respect to its semantics [33]. More specifically, the prerequisites 
are that the following conditions all hold. 

(1) The logic admits the effective finite model property shown by a filtration argument. 

(2) The tableau calculus is sound and constructively complete. 

(3) A weak form of subexpression property holds for tableau derivations. 

Constructive completeness is a slightly stronger notion than completeness and means that 
for every open branch in a tableau there is a model which reflects all the expressions (for- 
mulae) occurring on the branch. The subexpression property says that every expression in 
a derivation is a subexpression of the input expression with respect to a finite subexpression 
closure operator. 

In order to be able to exploit this 'termination through blocking' result from [33], in 
this paper, our goal is to synthesise tableau calculi that satisfy the prerequisites ([2]) and ([3]). 
It turns out that, provided the specification of the semantics of the logic is well-defined in a 
certain sense, the subexpression property can be imposed on the generated calculus. Crucial 
is the separation of the syntax of the logic from the 'extras' in the meta-language needed 
for the semantic specification of the logic. The process of generating tableau calculi can be 
completely automated and gives, together with the unrestricted blocking mechanism and the 
results in [32l |33] , an automated procedure for generating tableau decision procedures for 
logics, whenever they have the effective finite model property with respect to a well-defined 
first-order semantics, that is, condition ([1]) holds. 

The tableau synthesis method introduced in this paper works as follows. The user 
defines the formal semantics of the given logic in a many-sorted first-order language so that 
certain well-definedness conditions hold. The semantic specification of the logic is then 
automatically reduced to Skolemised implicational forms which are further transformed 
into tableau inference rules. Combined with a set of default closure and equality rules, the 
generated rules provide a sound and constructively complete calculus for the logic. Under 
certain conditions the set of rules can be further refined. If the logic can be shown to admit 
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finite filtration, then the generated calculus can be automatically turned into a terminating 
calculus by adding the unrestricted blocking mechanism from [32J. 

The method is intended to be as general as possible, and cover as many logics as possible. 
Our main focus is non-classical logics and description logics. As case studies we consider the 
application of the method to propositional intuitionistic logic IPC [28] and the description 
logic SO. Propositional intuitionistic logic provides a nearly perfect example because the 
semantics of the logical connectives is not Boolean and the semantics is restricted by a 
background theory. In addition, the logic is simple. SO is the extension of the description 
logic ACC with singleton concepts (or nominals) and transitive roles. 50 is a fragment of 
many expressive description logics considered in the literature [Jj and is the analogue of the 
hybrid [9] version of the standard modal logic K4 [8j . 

The paper is structured as follows. Section [2] defines the apparatus for specifying the 
logic of interest. It consists of two languages, a language for specifying the syntax of the 
logic and a language for specifying its semantics. How to specify the semantics of a logic is 
described in Section [3j Because there are many ways of writing semantic specifications, in 
this paper, we focus on what we call well-defined semantic specifications for which sound 
and complete tableau calculi can be generated. The tableau generation process is presented 
in Section m and Section [5] proves soundness and constructive completeness of the generated 
calculus. Sections [6] and [7] discuss two techniques for refining a calculus. The first refinement 
aims at reducing branching in derivations. The second refinement aims at reducing the use 
of extraneous constructs in the language of the tableau calculus. In Section [8] we show 
how the unrestricted blocking mechanism of ^32j can be used to obtain terminating tableau 
calculi for logics with the effective finite model property. To illustrate the approach we 
use the description logic 50 as a running example throughout the paper. In Section [9] 
the approach is applied to propositional intuitionistic logic. The paper concludes with a 
discussion of the approach. 

The paper is written using terminology of description logics, but all the results apply 
equally to modal logics and other non-classical logics. In most cases where we use the word 
'expression' we could have equally used the words 'formula' or 'logical term'. 

2. The Specification Languages 

In order for the user to specify the semantics of the given logic for which they want to 
develop a tableau calculus there are two specification languages: 

(1) an object language for defining the syntax of the logic, and 

(2) a meta-language for specifying the semantics of the logic. 

For the sake of generality the object language, denoted by £, is a many-sorted pro- 
positional language, thus allowing for the specification of many-sorted propositional logics 
including modal logics, description logics and other non-classical logics. 

Throughout the paper the standard notation u is used for the smallest infinite countable 
ordinal, that is, w = {0, 1, 2, . . .}. 

Let Sorts={0, 1, . . . , A^} be the index set of the sorts of the object language. The idea 
is that, for n = 1, . . . ,N, symbols of sort n are interpreted as n-ary relations and symbols 
of sort are interpreted as domain elements. Of the sorts, the sort 1 is regarded as the 
primary sort. 

Let Conn be a countable set of the logical connectives of the logic to be specified. Every 
connective a in Conn is associated with a tuple {ii,i2, . . . , im+i ) £ SortS^"^~^^^ , where m > 0. 
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The last argument im+i is the sort of the expression obtained by applying a to expres- 
sions of sorts ii,i2, . . . ,im, respectively. We say that a is an m-ary connective of sort 

{ii,i2, ■ ■ ■ ,im+l)- 

The object language C is defined over an alphabet given by a set of sorts Sorts, a 
set of connectives Conn, a countable set of variable symbols {p* | i G Sorts, j G oj}, 
and a countable set of constant symbols {qj \ i G Sorts, j Go;}. £ is defined as the set 

of expressions over the alphabet closed under the connectives in Conn. More formally, let 
ieSorts^^i where each denotes the set of expressions of sort i defined as the smallest 
set of expressions satisfying the following conditions: 

• All variables and all constants in the alphabet are expressions belonging to D. 

• For every connective a G Conn of sort (ii, ^2 • • • , im+i), cy{Ei, ■ ■ ■ , Em) is an expression 
belonging to ^2*'"+^, whenever Ei, . . . , Em belong to . . . , respectively. 

Symbols, expressions and connectives in the language C are also referred to as £-symbols, C- 
expressions and /^-connectives. Variables and constants in C are called atomic /^-expressions. 
We refer to expressions in as individuals, expressions in as concepts, and expressions 
in as roles. That is, individuals are expressions of sort 0, concepts are expressions (or 
formulae) of the primary sort and roles are expressions (or formulae) of sort 2. 

For an >C-expression E, the notation E{pi, . . . ,pm) indicates that pi,. . . ,Pm are (dis- 
tinct) variables occurring in the expression E. To avoid ambiguity in this notation we 
standardly assume that all the variables of the language C are linearly ordered by an order- 
ing <y and pi <v • • • <v Pm- E(Ei, . . . , Em) denotes the expression obtained by uniformly 
substituting E^ into pj, for alH = 1, . . . , m. Similarly, if X is a set of /^-expressions depend- 
ing on variables pi,... ,Pm, we indicate this as X{pi, . . . ,Pm) and denote by X{Ei, . . . , Em) 
the set of expressions which are instances of expressions from X under uniform substitution 
of the expressions Ei, . . . , Em into pi, ■ ■ ■ ,Pm, respectively. 

Throughout the paper wc tisc the logic SO as a running example. Recall that SO is the 
description logic ACC extended with nominals, or singleton concepts, and transitive roles. 

The object language Cso for specifying the syntax of SO consists of three sorts, 
namely 0, 1 and 2 for individuals, concepts, and roles, respectively. Atomic expressions 
of sort are individual variables from a countable set {p^ \ j G uj}. We denote individual 
variables also by iQ,li, . . .. The variables pj are of sort 1 and are the concept symbols. In 
this paper concept symbols are denoted by po,pi, . . .. The variables pj of sort 2 are the 
atomic roles and are denoted by ro , ri , . . . . 

The connectives in Cso are the following: 

• The 'singleton concept' connective {■} of the sort (0, 1). That is, {£} is a concept for 
every individual £. 

• The Boolean connectives U and -> of sorts (1, 1, 1) and (1, 1), respectively. As usual, we 
use infix notation for U and prefix notation for -i. Thus, C U D and -iC are concepts for 
any concept expressions C and D. 

• The existential restriction connective 3 • .• of sort (2, 1, 1). That is, 3r.C is a concept for 
any role expression r and concept expression C. 

Thus, expressions of jCso are built from individuals, concept symbols and role symbols 
using the given connectives, and there are no other expressions in Cso- In this language, 
individual and role expressions are allowed to be atomic only. 
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The meta-language in which the semantics of the given logic is specified is a many- 
sorted first-order language with equality and is denoted by FO{C). FO{C) extends the 
object language C, the idea being that ^-expressions are represented as terms in FO{C) 
and /^-connectives as functions. 

Formally, FO{C) is defined as an extension of C with one additional sort, namely N + 1, 
additional symbols, the standard first-order connectives -i, V, A, — t-, the equivalence con- 
nective = , first-order quantifiers 3 and V, and the equality predicate ~. Thus the sorts 
of FO{C) are Sorts U {N + 1} = {0, . . . , N, N + 1}. We cah the additional sort N + 1 
the domain sort, and symbols over this sort are called the domain symbols. The additional 
symbols comprise of a countable set of variable symbols {x, y,z,XQ,yQ,ZQ,.. .} of the domain 
sort, a countable set of constants {a, b, c, ao,bo, cq, . . .} of the domain sort, function symbols 
{/) 9,h, fo,go,ho, . . .} mapping argument terms to terms of sort N+1, and a countable set of 
constant predicate symbols {P, Q, R, Pq, Qq, Rq, . . .} of the domain sort (that is, argument 
terms are required to be terms of sort A^-|- 1). Intuitively, the domain sort contains symbols 
necessary for formalising semantic properties of the domain elements of interpretations of 
the target logic. 

In addition, FO{C) contains the symbols uq, ... ,1/1^, one for each sort in SortS of the 
object language. In particular, vq is a unary function symbol of sort (0, N + 1) (that is, a 
function from sort to sort N + 1). Each of the remaining is a predicate symbol of sort 
{i,N + 1,...,N + 1) with arity i + 1. 

The purpose of these symbols is to define the semantics of the connectives of the logic 
by using conditions similar to satisfaction conditions in standard definitions, can be 
viewed as the interpretation mapping for individuals (represented as terms) in the object 
language. All other i/„ can be viewed as interpretation mappings for expressions in the 
object language; they can be viewed as the 'holds' or 'satisfaction' predicates. 

Finally, for every sort we assume the presence in FO{C) of a binary predicate symbol 
representing the equality predicate for that sort. For reasons of simplicity, we use one 
symbol, namely ~, for each of the equality predicates. 

Formulae in FO{C) are just first-order formulae defined over the symbols of FO{jC), 
where each expression in £, is represented by a term in FO{C). In particular, each variable 
symbol pj in >C* is represented by a variable of sort i in FO{C), each constant symbol 
in is represented by a constant of sort i in FO{jC), and every connective a is represented 
by a function of the same sort as a. 

To illustrate how expressions of a logic are represented in a meta-language we continue 
our running example. According to our definitions the meta-language FO{Cso) for SO is 
a first-order language with sorts 0, 1, 2 and 3. The interpretation symbols are vq (which is 
a function symbol) and the holds predicate symbols u\ and U2. Also included in FO{Cso) 
is the equality predicate symbol ^. 

Every variable of Cso is represented by a variable of the corresponding sort in FO{Cso)- 
Thus, every individual variable £ in Cso is represented by a variable of sort in FO{Cso)- 
Every concept symbol p in Cso is represented by a variable of sort 1, and every role 
symbol r in Cso by a variable of sort 2 in FO{Cso)- Connectives of the object language 
become function symbols of an appropriate sort in FO{Cso)- Thus, every expression in Cso 
becomes a first-order term of the corresponding sort. For instance, the concept expression 
^r.p is represented as a term of sort 1. 
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Whereas the sorts 0, 1, and 2 are the sorts in the object language Cso, the sort 3 is 
a separate sort in FO{Cso) with its own sets of variables, individual constants, function 
symbols, and symbols of predicate constants. Sort 3 is the domain sort for SO. 

Finally, for every individual £, i'o{£) is a term of sort 3 in FO{Cso), and i^i(C, t) 
and i'2{T,t,t') are atomic formulae of FO{Cso), for any concept expression C, any role 
expression r, and any terms t and t' of sort 3. 

Before we describe how a logic can be defined in the meta-language FO{C) in the next 
section, we fix some more notation and terminology. Let w denote a sequence of first-order 
variables, that is w=wi., . . . ,Wn- Similarly, let Vw denote the universal quantifier prefix on 
all variables wi, . . . , Wn, that is, VwJ=Vu;i • • • Mwn- For any set S of formulae, VS" denotes 
the universal closure of S, that is, the set 

yS = {Vu; </)(uJ) I (j){w) e S}. 
For every first-order formula ip we let 

, def I ■0') provided ip = -^tp', 
I -1^, otherwise. 

Formulae of FO{C) in which all occurrences of the £- variables (of sorts z = 0, . . . , AT) 
are free are called C-open formulae. An C-open sentence is an £-open formula that does 
not have free occurrences of variables of the domain sort N + 1. 

For example, the formula 

\/y{ui{3r.p,y) A U2{r,x,y)) 

is an ^C^o-open formula because the variables p and r occur only freely. Because the 
variable x of domain sort 3 also occurs freely, it is not an ^go-open sentence. In contrast, 
the formula 

Vy (z/i(3r.p, y) A Vx i/2(r, x, y)) 
is an Cso-open sentence, because all the occurrences of the domain variables x and y are 
bound by quantifiers and all the occurrences of p and r are unbound. The formulae 

VpVy (z/i(3r.p, y) A f2(r, x, y)) and Vr (i^i(3r.p, y) A f2(r, x, y)) 

are not /^go-open because of the presence of quantified variables of sorts other than the 
domain sort {p and r). (The symbol 3 in 3r.p should not be confused with the existential 
quantifier of first-order logic.) 

For any set S of £-open formulae in FO{C) and a set X of /^-expressions, let 

S\X = {(t){Ei, . . .,Em) I (pipi, . . . ,Pm) G S and 

all /^-expressions occurring in 4'{Ei, . . . , E^) belong to X}. 

S \X is the set of instances of formulae in S under substitutions into the variables of C that 
do not contain expressions outside X. 
Suppose, for example, 

S = {i'i{3r.p,y),iyi{-:p,x)} and X = {rQ,pQ,p,pnpQ,3rQ.pQ}. 
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Then the instantiations of formulae in S relative to X are 

ui(3ro.po,x), iyi(3ro.p,x), ui(3ro.pnpo,x), ui(3ro3ro.po,x), 
i'ihPo,x), i^i{-^p,x), ui{^{pnpo),x), i^i{-^3ro.po,x). 

The only formula in this list where all ^-subexpressions belong to X is i'i{3ro.po,y). Thus 

S\X = {iyi{3ro.po,y)}. 

The formula i^i(3ro.p, y) does not belong to S\X because 3ro.p does not belong to X. Other 
instances do not belong to S\X for similar reasons. 

3. Specifying the Semantics of an Object Language 

First, we define the model structures in terms of which the semantics of the object language 
is then defined. 

An C-structure is a tuple jf={C^, . . . , , A^, i/^,. . . , i/^, a^,. . . , P-^, . . .) where is 

a non-empty set, fo(^)'^ G A"^ for every individual £ G C^, vl <Z C ■>< (A^)", for < n < TV. 
£ A-^ and C (A^)™, where m is the arity of P. For simplicity we omit the sets 
, . . . , and simply write 

X= (A^,z/J,...,4,a^...,P^...). 

Observe that an /^-structure X is a first-order interpretation of the language FO{C). 

For our sample logic SO an /^^o-structure is given by a tuple X = {/S^ ^v^). 
This means, the uf are arbitrary interpretation functions for tSO-expressions. As yet no 
additional conditions are assumed. In the description logic literature instead of a family 
of holds relations Ui just one holds relation u is used, resulting in the simpler and more 
familiar notation for an interpretation, namely T = (A-^,!/-^). 

A valuation in X is a mapping l from the set of variables and constants of FO{C) to 
C U A^ such that i{p^j) , i{q^j) G and i{xj), i{aj) G A^ . We use the standard notation 
X, t 1= ^ to indicate a (first-order) formula (p is true in the (first-order) interpretation X 
under valuation l. Given a set of formulae 5, we write X,l \= S \i X,l \= (j) for every 
formula (j) m. S. 

We say that a valuation l in an >C-structure is canonical if every variable and constant 
of any sort z = 0, . . . ,iV is mapped to itself, that is, i(p*) = and i(g*) = (7* for every 
variable p^- and constant in the language C. This means that the canonical valuation of 
any term of sort f = 0, . . . , iV is the term itself. 

It is not difficult to see that any >C-open formula ^ is satisfiable in an >C-structure iff it 
is satisfiable in an >C-structure under a canonical valuation. 

We write S |=c <S" for sets of formulae S and S' , if, for every >C-structurc X and a 
canonical valuation i \iiX, X^i\= S implies X, i |= S' . Similarly, we write X |=c >S' iff there 
is a canonical valuation l such that X^i\= S. 

Satisfiability for expressions of the given logic is defined only for expressions of the 
primary sort, that is, concept expressions. Wc say a concept expression C is satisfiable in X 
if there is an element a in A"^ such that (C, a) G J^f, or equivalently, X |=c 3a; vi{C,x). A 
concept expression C is valid in X if X t=c z^i(C, x). 

Next we describe how the semantics of a given logic can be specified in FO{C), where C 
is the object language of the logic. 
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Vx (x x) VxVy {x y ^ y K, x) VxVyVz {x'^yAy^z^x'^z) 

Mxi ■ --^Xniyi {P{xi, . . . ,x„) A Xi ^ P(xi, . . . Xi_i, y,, Xj+i, x„)) 
VpVxi • • • Vx„V?/i (z^„(p,xi, . . . A Xi f» yi i^n(p,a::i, • • • Xi_i, y^, Xj+i, x,,)) 
Vpi • • • VpmVxi • • • Vx„Vyj (xj ^Vi^ 

f{Pl, ■ ■ ■ ,Pm,Xl, ... ,Xn) ^ f{pi, . . . ,Pm,Xl, . . . Xj_i , yj , Xj+i , . . . ,X„)) 

Figure 1: Default equality axioms in FO{C). 

Let S be any set of £-open sentences in FO{C) and o" be a connective of a sort 
(ii, . . . ,ijn,n). A formula (j)'^ in the language of S defines the connective a with respect 
to S if it does not contain a and the following holds: 

yS \= Vpi . . . Vpm Vx {Un{a{pi, . . . ,Pm),x) = {pi, ■ ■ ■ ,Pm,x)). (3.1) 

Here pi, . . . ,Pm are variables of sorts ii, . . . ,im respectively. If there is a formula (p^ which 
defines a with respect to S, we also say S defines a and 

Vx {Unicr{pi, . . . ,Pm),x) = 4)"{pi, ■ ■ ■ ,Pm,x)), 

which is an >C-open sentence, is a a-definition with respect to S. Connective definitions are 
always £-open sentences, that is, they do not contain any quantifiers over variables of sorts 
0, . . . , (these are implicitly regarded as being universally quantified). 

By definition, a (first-order) semantic specification of the object language £ is a set 
S of jC-open FO(£)-sentences defining the connectives of C For the sake of generality we 
always include the standard equality axioms listed in Figured] in a semantic specification S. 
This ensures that ~ is a congruence on every sort in any first-order interpretation of FO{C). 
We assume the set of fi-definitions with respect to S of all the connectives a of /3 is fixed 
and explicitly given as the set S^. 

Intuitively, a specification S of a semantics of the given logic is an axiomatisation in the 
language FO{C) of a class of /^-structures where each /^-connective a has an unambiguous 
representation. Because the Beth definability property holds for first-order logic we can 
assume that all such representations are explicit, that is, every connective a is defined by 
an explicit formula (j)'^ . The collection of explicit definitions of all the connectives constitutes 
the set . Since there are many ways of axiomatising the same (axiomatisable) class of 
first-order structures and choosing explicit representations for connectives, there are many 
ways of specifying a semantics and choosing a set of semantic definitions for a semantic 
specification. Axiomatisations of the empty class of /2-structures are all inconsistent and, 
hence, semantic specifications can be inconsistent. 

As an example we give a semantic specification for the logic SO. Suppose Sso consists 
of the following £5C)-open sentences together with the default equality axioms. 

Connective definitions: 

Vx {vim,x) = u^{i)^x) 
Vx {vi (-.p, x) = -.1/1 (p, x)) 
Vx {i>i{pU q,x) = vi {p, x) V ui {q, x)) 
Vx {ui{3r.p,x) = 3y {u2{r,x,y) Avi{p,y))) 
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Transitivity axiom: 

\/x\/yVz {{h'2{r,x,y) A U2{r,y,z)) V2{r,x,z)) 

The first four sentences are tlie connective definitions of Cso and constitute the set S^q. 
The fifth sentence does not belong to S^q. It is the transitivity axiom specifying that all 
role symbols r are transitive. If we wanted to specify that only a subset of the role symbols 
are transitive, this can be done by including one transitivity axiom for each role (constant) 
symbol that is meant to be transitive. 

Because, in general, there are many possibilities of axiomatising the same class of C- 
structures, there are many possibilities for specifying the semantics of a logic. In this 
paper we restrict our attention to semantic specifications in forms that are standard in the 
literature for non-classical logics. 

We say a semantic specification S is normalised, if it consists of three disjoint parts, 
that is, S = U 5~ U S^, where 5^, and are disjoint sets of sentences satisfying the 
following: 

(nl) 5"*" is a set of £-open sentences of the form: 
(n2) S~ is a set of >C-open sentences of the form: 

= yx {(j)^{pi,...,p.^,x) ^Un{E{pi,...,p„i),x)). 

(n3) All /^-expressions occurring in are atomic. 
Here, E denotes any /^-expression. 



In this definition we assume that multiple sentences of the form (nl) for the same 



expression E in and S are all equivalently reduced to a single sentence Similarly 
for [(^ and C^. The intuition is that and S define the semantics of the connectives. 

defines it for positive occurrences of expressions E (with free variables pi, . . . ,pm), 
while S~ defines it for negative occurrences of expressions E. We refer to S'^ as the 
background theory of the semantics S. In particular, includes the equality axioms from 
Figure [TJ 

A semantic specification in the form U can be turned into normalised form by de- 
composing each connective definition in into two implications. In fact, and U 
play the same role in axiomatising /^-connectives in FO{C) modulo the background the- 
ory S^. 

The sample semantic specification Sgo can be normalised by decomposing the connect- 
ive definitions in S^q into S^^^-sentences and 5^Q-sentences as follows. 



5^0-sentences: 



vx {i^i{{e},x)^M^)^x) 

Vx [ui (-.p, x) -.j/i {p, x)) 
Vx (z^i {pU q, x) ^ ui (p, x) V ui {q, x)) 
Vx {ui{3r.p,x) ^3y [v2{r,x,y) A z^i(p,y))) 



10 



R. A. SCHMIDT AND D. TISHKOVSKY 



S^Q-sentences: 

Vx {iyoii)^x^ui{{£},x)) 
Vx x) — )• x)) 

Vx (z^i {p, x) V vi {q, x) ui{p\J q, x)) 
Vx {3y (z/2(r,x,y) A i^i{p,y)) i^i{3r.p,x)) 

The background theory 5"^^ of SO consists of this sentence, 

Mx'iyMz [{u2{r,x,y) Ai^2ir,y,z)) U2{r, x, z)) , 

specifying transitivity of roles plus the default equality axioms. 

It is worth noting that the symbol E in definitions (nl) and |(n2)" denotes an arbitrary 
expression in C This means that E does not necessarily have the form cr{pi, . . . ,pn) where a 
is a connective. For example, a specification might be: 

=^ Vx {ui{3r.3r.p,x) — )■ z^i(3r.p, x)) 

In this case E'^=3r.3r.p and (l)^ = i'i{3r.p,x). 

It is convenient to introduce notation for the set of instantiations of the right hand sides 
and left hand sides of the and respectively. For every /^-expression E, let 

$1 = {4>l{Ei, ...,Em,x)\E = F{Ei, ...,Em) for some ^^(p^'-'P^'^ from S} and 

{4>^{Ei, . . .,E^,x) I E = F{Ei, ...,Em) for some from S}. 

Thus, (respectively <^^) is the set of instantiations of succedents (respectively ante- 
cedents) of positive (respectively negative) specifications in S, where the antecedents (re- 
spectively succedents) match the given expression E. 

For example, in the case of our specification for SO and E = 3r.{p U q), we have 

Let -< be any ordering on /^-expressions. For any /^-expression E and any set X of 
/^-expressions we define 

SUb^(^) = {E'\E'^E} and SUb^(X) = |J SUb^{E). 

That is, SUb^(X) is the set of all expressions ^-smaller than some expression in X. We 
often write sub^(£'i, . . . ,£'m) rather than SUb^({Si, . . . ,Em})- 

Any normalised specification of a semantics induces a relation -< on expressions 
as follows. Let -< be the smallest transitive relation satisfying: E' ~< E whenever E = 
F{Ei, . . . , Em), for some £-expressions Ei, . . . , Em, and E' occurs in </)^(i?i, . . . , Em,x) 
or <j)^{Ei, . . . ,Em,x), respectively, for some sentence or ^^^^p^'---'?'™) in S. The 

reflexive closure of -< is denoted by ^. 

Recall that denotes the set of /2-open sentences that define the £-connectives. A 
semantic specification S is well- defined iff S is normalised and the following conditions are 
all true. 

(wdi) V50,V5^ ^ys, 

(wd2) the relation -< induced by 5 is a well-founded ordering on /^-expressions, and 
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; Em), 



(wd3) for every expression E = o-{Ei, 

V50,5''rsub^(^) K yx(^(^f\^f^^"{Ei,...,Em,x)^ A 

b''{Eu...,Em,x)^\/^' 



Condition (wd3) follows from the following first-order condition: 
(wd3') for every connective a, 



A 



Because we can assume that is also a normalised semantic specification, it similarly 
induces a relation that can be assumed to be a well-founded ordering. Standardly, the 
semantics of a logic is defined by induction over the interpretation of the connectives and 
primitives (that is, constants, and variables) which is homomorphically lifted to arbitrary 
/^-expressions. This is equivalent to assuming a well-founded ordering on expressions of £. 
For any reasonable definition of a semantics such a well-founded ordering exists. Thus, 
although it is not difficult to imagine formulae (f)'^ such that -<o is not well-founded, we 
assume that the (f)"^ are chosen in such a way that it is possible to lift the semantics of 
/^-primitives to arbitrary /^-expressions, that is, -<o is well-founded. 

In the case of Sso, because Sg(^ and Sg^ are obtained by decomposing the set S^^, the 
two orderings -< and coincide. Similar to many cases of description and modal logics, -< 
and ^0 are both just the direct subexpression ordering on Cso- 

There are different semantic specifications which describe the same class of /^-structures. 
As we have just noted, some semantic specifications already allow the lifting of the semantics 
from atomic expressions to arbitrary /^-expressions. We assume that 5° U is such a spe- 
cification and implicitly accommodates /^-connectives. According to this definition, a well- 
defined semantic specification S is equivalent to U S'' modulo the background theory S^. 



This is ensured by condition (wdl) and the assumption that S defines all /^-connectives 
in S^. Through condition (wd2) , 5 imposes its own inductive structure on /^-expressions. 
Condition (wd3) specifies a correlation between S and 5" on instances of /^-expressions. It 
can be seen that S'^ U 5^ is a well-defined semantic specification itself. 

Let us consider if the semantic specification of SO above is well-defined. The first con- 
dition is satisfied because Sso = S^q U S^q. The second condition is satisfied because -< is 



the direct subexpression ordering. Condition (wd3') is true for all SO connectives. For 

• .-. Since ^/'^ = ^^''^ = {3y {i^2{r,x,y) A i^iip,y))}, 



instance, consider the case of a 
the formula 



Vx 



(^{3y{u2ir,x,y) Ai^i(p,y)) (tf{r,p,x)) A {(t)"{r,p,x) 3y{u2{r,x,y) A y)))) , 



on the right hand side of condition (wd3'^ 
tion 



is a tautology. In a similar way, the condi- 



(wd3') can be checked for the other connectives. 



A (propositional) logic L over the language £ is a subset of concepts in £ which is closed 
under arbitrary substitutions of variables with expressions of the same sorts. A logic L is 
first-order definable iff there is a semantic specification Sl such that L coincides with the 
set of all concepts that are valid in all /^-structures satisfying V5l, that is, 

L = {C eC^ \ K Vx uiiC,x)}. 
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For a fixed semantic specification S'l of a logic L, if I is an /^-structure satisfying Sl 
then by definition X is a model of L or simply an L-model (with respect to Sl)- 

4. Synthesising a Tableau Calculus 

First, we give the needed basic definitions for the kind of tableau calculi our method gen- 
erates. 

Let T denote a tableau calculus comprising of a set of inference rules. A tableau deriv- 
ation or tableau for T is a finitely branching, ordered tree whose nodes are sets of formulae 
in FO{C). Assuming that S is the input set of concept expressions in C to be tested for 
satisfiability the root node of the tableau is the set {z^i(C, a) | C G 5}, where a denotes a 
fresh constant of the domain sort. For a finite set 5, a can be viewed as the Skolem constant 
introduced by Skolemising the FO(£)-formula 3x i'i{C, x). (This can be naturally 

expanded to infinite sets of concepts but this is not essential for the paper.) 

Successor nodes are constructed in accordance with a set of inference rules in the cal- 
culus. The inference rules have the general form 

^0 
Xi \ . . . \Xn 

where both the numerator Xq and all denominators Xj are finite sets of negated or unnegated 
atomic formulae in the language FO{C) . The formulae in the numerator are called premises, 
while the formulae in the denominators are called conclusions, n is called the branching 
factor of the rule. The numerator and all the denominators are non-empty, but n may be 
zero, in which case the denominators are not present and the rule is a closure rule. Closure 
rules are also written Xq/J-. If the branching factor n is greater than one, the rule is a 
branching rule. An inference rule is applicable to a selected formula in a node of the 
tableau, if (j) together with other formulae in the node, are simultaneous instantiations of all 
the premises of the rule. Then n successor nodes are created which contain the formulae of 
the current node and the appropriate instances of Xj. We assume that any rule is applied 
at most once to the same set of premises, which is a standard assumption for tableau 
derivations. 

We use the notation T{S) for a finished (in the limit) tableau built by applying the rules 
of the calculus T starting with the set S (of >C-concepts) as input. That is, we assume that 
all branches in the tableau are fully expanded and all applicable rules have been applied 
in T{S). We assume that all the rules of the calculus are applied non-deterministically to 
a tableau. This means that we do not assume any order of rule application and, at any 
given node, an arbitrary rule is chosen for the node expansion from all the rules which are 
applicable to formulae of the node. 

In a tableau, a maximal path from the root node is called a branch. For a branch B 
of a tableau we write (f) & B to indicate that the formula cp has been derived in B, that 
is, (j) belongs to a node of the branch B. Our notion of a tableau branch can be viewed 
in two ways. On the one hand, one can view it as having procedural flavour as a path of 
nodes in the tableau derivation. On the other hand, a branch can be identified with the 
set-theoretical union of the nodes in it. 

A branch of a tableau is closed if a closure rule has been applied in this branch, otherwise 
the branch is called open. The tableau T{S) is closed if all its branches are closed and T{S) 
is open otherwise. The calculus T is sound iff for any (possibly infinite) set of concepts <S, 
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each T{S) is open whenever S is satisfiable. T is complete iff for any (possibly infinite) 
unsatisfiable set of concepts S there is a T{S) which is closed. 

Now, let L be a first-order definable propositional logic over C and Sl a well-defined 



semantic specification of L, that is, conditions (wdl) -(wd3) hold for Sl- We now describe 
how tableau rules can be synthesised from Sl- If Sl is not already normalised we first 
normalise it. Thus assume Sl = S~t U 5^ U 5^. 

Next we take a positive specification in S^- Eliminate existential quantifiers using 
Skolemisation and equivalently rewrite ^f. into the following implicational form 

/ J 

\ j=lk=l 

where each ■0^^ denotes a literal. This is always possible. The implication is now turned 
into the rule: 

^ ,^E^ def l^njEjpi, - - - ,Pm),Xl, . - - ,Xn), Vl ^ Vl, Vs ^ Vs 

where yi, - - - ,ys denote the free variables occurring in -0^^ which do not occur among the 
variables xi, . . . ,Xn- Essentially, the antecedent of the implication has become the main 
premise in the numerator and the succedent has been turned into the denominators of the 
rule. We say the rule corresponds to This is repeated for each positive specification 
in St- 

Analogously, we generate a tableau rule for each negative specification in S^ . The 
corresponding rules have the form 

i'n, ipiKi I ••• I V'ji, ipjKj 

This is obtained by Skolemising the contrapositive of S,'^ and then equivalently rewriting it 
to an implication of the form 

/ J 

Vxi • • • Vx„ ^Un{E{pi, . . . ,Pm),Xi, . . . , X„) ^ \/ /\ ll)jk 

\ i=i k=l 

where each 0jfc denotes a literal. 

We refer to the rules and P-{C-) generated in this way, as the decomposition 

rules. 

If the right hand sides of the implicational forms contain free variables m then these are 
assumed to be universally quantified and the generated rules are 7-rules in the Smullyan 
classification. Our use of the equalities yi f» tji in the premises of the generated rules is a 
bit non-standard, and can be omitted if this is preferred. We use the equalities to achieve 
domain predication, which makes explicit that applying 7-rules only instantiates with terms 
(domain elements) that occur on the current branch. 

The sentences in the background theory of Sl are turned into rules by first equivalently 
transforming them into Skolemised disjunctive normal form. More specifically, let ^ be an 
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-P(xi, . . . , Xji) ~'Pi,Xi, . . . , Xfi') 

X\ ^ • • • ? ~ X\ ~ X]^, • • • ; ~ X^i 

Xl , . . . , Xfi ) 



p ^ p, X\ ~ Xi, • • • J Xj2 ~ Xn p p, X\ ~ Xi, • • • ; Xfi ~ Xn 

- X j/, y ^ z 

y ^ X X z 

P(x\ , . . . , Xft) , Xj ~ i/j z/ji (p, xi , . . . , Xj^) , Xj ~ yi 



P{xi, ■ ■ ■ , Xj_i , yj, Xj-j_i , . . . , Xj^) i'n(j)j xi , . . . , Xj_i , yj, Xj-j_i , • • • , x^j) 

f{Plj ■ ■ ■ -iPmi a^l) • • • ) Xn) ~ f{Pli ■ ■ ■ iPrm X\^ . . . ^ Xn), Xj ~ T/j 
f{Pl ) ■ ■ ■ ; Pm; , . . . , Xj^) ~ f {Pl ) • • • ; ) ^^1 ) • • • ^^i— 1 j X^^i , • • • , X^j) 

Figure 2: Default equality rules for predicates and functions occurring in S^. 
arbitrary sentence in S^. It is first equivalently rewritten to 

Vxi • • • Vx„ Y l\ ipjkipi, • • • 1 Pm ) Xi , • • • , Xji 

), (4.1) 

i=i k=i 

where each ipj^ denotes a literal, and is then turned into the corresponding rule, namely 

p(^\ def Pl ~ Pl, • • • ; Pm ^ Prrn Xl ~ Xl, • • ■ , Xj^ ~ Xj^ 

V'li, • • • , V'lXi I • • • I ipji, • • • , V'ji^j 

The Pl, . . . ,Pm-i Xl, . . . , Xn are the variables appearing in (j4.ip . The purpose of the equalities 
in the premises is domain predication and can optionally be omitted. Rules corresponding 
to sentences in are called theory rules. 

For example, the generated decomposition rules for the existential restriction operator 
in the description logic SO are 

ui{3r.p,x) -^iJi{3r.p,x), y^y 



Mr,x,f{r,p,x)), vi{pj{r,p,x)) -^V2{r,x,y) \ -^vi{p,y)' 

f{r, p, x) in the left rule is the Skolem term introduced for the quantifier 3y in the connective 
definition of 3 • .-. The intuition is that for each r, each p and each x matching the premise 
of the rule there is an element f{r,p,x) so that the conclusions of the rule are both true. 
The transitivity property for roles in the background theory of the semantic specification 
of SO is transformed to the rule 

r ^ r, xwx, y ^ y, z ^ z 

-^^2{r,x,y) I ^V2{r,y,z) \ V2{r,x,z)' 
These rules are not the familiar rules used in standard description logic tableau systems, 
but in Section [6] we see how to get those by rule refinement. 

The equality rules are generated in essentially the same way from the equality axioms in 
the background theory and are refined in accordance with the method described in Section[6l 
Figure [2] lists the full set of the refined equality rules included by default in the generated 
tableau calculus. 

Since in our formalisation the equality predicate(s) are also used as domain predicate(s) 
in order to keep track of the ground terms that occur in the tableau branches, we include 
rules which ensure that expressions of the form t ~ t are treated as domain predicates and 
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appear in every branch of a tableau for every term t in the branch. These are the first four 
rules in Figure [2j In particular, these rules ensure that for any term occurring in a literal 
(-i)P(ti, . . . ,tn) or {-^)i^n{Q,ti, . . . ,tn) on any branch, the equalities ti ^ ti, . . . , tn ~ 
tn and q q are added to the branch. The rules also state reflexivity of the equality 
predicate(s). The remaining rules are variations of standard rules for equality. The rules in 
row three and four ensure that ~ is a congruence relation for predicates on terms occurring 
in a branch. The rule in the last row is a congruence rule for function symbols / occurring 
in a branch including Skolem function symbols. 

We note that the equality predicate ~ is treated as an ordinary constant predicate 
symbol of the meta-language FO{C) and, hence, can occur in any place where an ordinary 
predicate symbol P can occur. 

Finally the generated tableau calculus also includes the following closure rules. 

Un{P,x), -^Vn{p,x) P{x), ^P(x) 

for each sort n and every constant predicate symbol P occurring in the semantic specifica- 
tion Sl oi the logic. 

We use Tl to denote the generated tableau calculus. In summary, it consists of these 
rules. 

(tl) The decomposition rules p'^iS) and p'L{£,') corresponding to all positive specifications ^ 

in and all negative specifications ^' in SJ^. 
(t2) The theory rules p{C) corresponding to all sentences C in the background theory S'^. 
(t3) The equality rules of Figure [21 
(t4) The closure rules (fOjl . 

Note for each connective there are exactly two decomposition rules in the calculus Tl, one 
for unnegated occurrences and one for negated occurrences of the connective. 

For SO the described approach generates the tableau rules listed in Figure [3l 

5. Ensuring Soundness and Constructive Completeness 

We first prove soundness of the calculus Tl synthesised from a normalised semantic spe- 
cification Sl- It is possible to prove that every rule of the generated calculus Tl preserves 
satisfiability of F0( jC)-formulae. That is, if all premises of a rule are true in an L-model I 
(under a canonical valuation) then the conclusions of some branch are also true. This is the 
case because the transformation of the semantic specification ensures that the definitions 
of the rules basically mimic the semantic definitions. Hence, soundness is ensured. 

Theorem 5.1 (Soundness). Let Tl be a tableau calculus generated from a normalised se- 
mantic specification Sl of a logic L. Then Tl is sound for L, that is, for every possibly 
infinite set of concepts S satisfiable in an L-model, any finished tableau derivation Tl{S) is 
open. 

Now, we prove constructive completeness of Tl- Let B denote an arbitrary branch in a 
T^-tableau derivation. We define the following relation ~g with respect to B: 

t^st' 44 t^t'eB, 
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Decomposition rules: 

vi{{i},x) -^ui{{i},x) ui{^p,x) -^ui{^p,x) 

uoii) X uo{i) ^ X -^iyi{p,x) vi{p,x) 

T^ljPl y P2,X) ^yi{pi y P2,X) 

^liPl.x) I Vi{p2,x) ^Vi{pi,x), ^Vl{p2,x) 

vi{3r.p,x) -iz^i(3r.p, x), y ~ y 



iy2{r,x,f{r,p,x)), i^i{p, f{r,p,x)) ^i^2ir,x,y) \ ^vi{p,y) 

Transitivity rule: 

r ^ r, y ^ y, z ^ z 

^V2{r,x,y) I -^U2{r,y,z) \ U2{r,x,z) 

Equality congruence rules: 

x ^ y X ^ y X y x ^ y, y ^ z 

X x, y ^ y x ^ X, y ^ y y ^ x x ^ z 

ui{p,x) ^ui{p,x) U2{r,x,y) -^U2{r,x,y) 



p X p, x~x p ^ p, x~x r~r, y ^ y r ^ r, x~x, y ^ y 

x^y U2{r,x,y), x^z U2{r,x,y), y^z 

ui{p,y) U2{r,z,y) U2{r,x,z) 

f{r,p,x)^f{r,p,x), x^y 
f{r,p,x) ^ fir,p,y) 

Closure rules: 

iyi{p,x), -^ui{p,x) U2{r,x,y), ^V2{r,x,y) x ^ y, x y 

± ± ± 

Figure 3: Generated tableau rules for SO. 

for any ground terms t and t' of the domain sort + 1 in 0. Let ||t||=={t' | i be the 

equivalence class of an element t. The presence of the rules of Figure [2] ensures that ~b is 
a congruence relation on all domain ground terms in B. 

We say a model I, under a (canonical) valuation t, reflects an expression E of the sort n 
occurring in a branch B iff for all ground terms ti, . . . , i„ we have that 

• {E, . . . , i{tn)) G whenever Vn,{E,ti, . . . ,tn) S B, and 

• {E, L{ti), ... , i{tn)) ^ i^n whenever ^Un{E,ti, ... ,tn) & B. 

Similarly, I reflects predicate constant P from B under a (canonical) valuation i in X iff for 
all ground terms ti, . . . , t„ we have that 

• (i(ii), • • • , i{tn)) G P'^ whenever P{ti, . . . ,tn) ^ B, and 

• (i(ti), . . . , i(tn)) ^ P-^ whenever -^P{ti, ... ,tn) ^ B. 

A model I reflects branch B under a valuation t, if I reflects all predicate constants and 
expressions occurring in B under l. 

A tableau calculus Tl is said to be constructively complete (for L) iff for any given set 
of concept 5, if B is an open branch in a tableau derivation Tl{S) then there is an L-model 
Z such that: 
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(ml) The domain A"^ of I is the set of the equivalence classes ||t|| for each ground term t 
occurring in B. 

(m2) I reflects B under the canonical projection valuation vr defined by 7r(t) = ||t||, for every 
ground term t occurring in B. 

It is clear that if Tl is constructively complete then Tl is complete for L. 

Suppose now that Sl is a well-defined semantic specification and is a well-founded 
ordering on jC-expressions induced by the set S"^ of the definitions of the connectives of the 
form (I3.ip with respect to Sl- 

Let B be an open branch in a finished tableau derivation in Tl- We define interpretations 
of predicate symbols in I{B) by induction on as follows: 

• For every n-ary constant predicate symbol P in Sl, 

{(||ii||,...,||t„||)|P(ii,...,t„)G^}. 

• For every n = 1, . . . ,N the interpretation i^n of the f„ symbols is defined as the smallest 
subset of £^ X (A-^^^))" satisfying both the following, for every variable or constant p of 
the sort n, every connective a, and any expressions Si, ... , 

(p, € i^^(^) ^ iyn{p,ti,...,tn) £B, 

{a{Ei, . . . , Em), \\tl\\, . . . , \\tn\\) G l^n 

^ X{B) K'^"(^l,---,^m,||tl|l,...,||tn||). 

In what follows, we say that T{B) reflects an expression E (a predicate P, or a branch B) 
if T{B) reflects E {P, or B, respectively) under the canonical projection valuation vr, and 
omit any explicit reference to tt. 

A consequence of the deflnition of I{B) is that the deflnitions of the connectives are 
valid in I{B): 

Lemma 5.2. I{B) ^ VS^. 

Lemma 5.3. Let X he any set of expressions occurring in B. Suppose T{B) reflects all the 
expressions from X. Then I{B) \=c S'l \X. 

Proof. Consider any ^ G and suppose the Skolemised form of ^ is as in (14. ip . that is: 

J 

, Pm, 2^1 ) ■ ■ • ) ) ■ 

j=lk=l 

Let El, ... , Em be any expressions from X and ti, . . . , t„ any ground terms of sort + 1 
occurring in B. By rule p{^), there is a j = 1, . . . , J such that, for all k = 1, . . . ,Kj, the 
literals ipjk{Ei, . . . , Em,ti, . . . ,tn) are in the branch B. Since S^ does not contain non- 
atomic expressions of the language C we have that I{B) \=c ij^jkiEi, . . . , Em, \\ti\\, . . . ,\\tn\\) 
by the assumptions of the lemma for every k = l,...,Kj. This implies that I{B) \=c 

C{Ei, . . . ,Em, \\tl\\, . . . , \\tn\\)- □ 
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Corollary 5.4. S^. 

Proof. From the definition of X(S) and tlie closure rules we get that P(ti,...,t„) G B 
implies G G ^ implies (||ti||, . . . , ||t„||) ^ P^(^), 

. . . G ;B implies (p, ||ti||, . . . , ||t„||) G Vn'''^\ and . . . G S implies 

(p, ||ti||, . . . , ||in||) ^ i^n for every constant predicate symbol P, n = 0, . . . ,iV, and prim- 
itive p of sort n. Thus, I{13) \=c S'l by Lemma [5131 □ 

Lemma 5.5. I{B) reflects the branch B. 

Proof. By simultaneous induction on the well-founded ordering -< induced by Sl we show 
that for all n = 1, . . . , A^, for every and all domain ground terms ti, . . . , t„ (of sort 1) 
in B, we have that 

• (P, ||ti||, . . . , G J^n whenever !/„(£', ti, t„) G 5, and 

• {E,\\ti\\,...,\\tn\\) ^ whenever -.zy„(£;,ti, ... ,t„) G 

We have the following two cases which correspond to the base case of the induction and to 
the induction step: 

Case E = p. This case follows from the definition of X(;B). 

Case E = a{Ei, . . . , Em). Suppose Vn{E,ti, . . . ,tn) G B. Let be such that E = 
E{Ei, . . . , Em) for some Ei, . . . , Em and the Skolemised form of the corresponding cj)^ is as 
follows 

J 

(p^ipi, . . . ,Pm,Xl, ... ,Xn) =\/ f\ i'jkiPl,- ■ ■ ,Pm,Xl, . . . ,X„). 

j=l k=l 

Then by rule p+{^^) there is a j = 1,..., J such that, for all k = l,...,Kj, the lit- 
erals ipjk{Ei, . . . , Em,ti, . . . ,tn) are in B. Further, for every expression E'{Ei, . . . , Em) 
which occurs in 'i/'jfc(-Pi! • • • , Em, ti, . . . , tn), where k = 1, . . . , Kj, we have E'{Ei, . . . , Em) -< 
E{Ei, . . . , Em) = E. Thus, by the induction hypothesis, for every k = 1, . . . , Kj, T{B) \=c 
iijk{Ei, . . . ,Em, \\ti\\,. . . , ||in||)- Consequently, we have 

I{B) K ^i{Eu...,Em,\\til...A\tn\\) 

and, hence, I{B) K (ll*ill> • • • > ll*n||)- By Lemma ESI I{B) K S'[\SUb^{E). Since 
I{B) \= ySj^, we obtain I{B) \=c (j)'^{Ei, . . . , Em,\\ti\\, . . . ,\\tn\\) and, therefore, by the 

definition of E{B), we have {E, . . . , ||tn||) £ i^n^^^ ■ 

The second implication for negative literals is proved similarly. □ 

As a consequence we obtain the following theorem. 

Theorem 5.6 (Constructive completeness). Let Tl he a tableau calculus generated from a 
well-defined semantic specification Sl of a logic L. Then Tl is constructively complete. 

Proof. We only need to prove that T{B) \= ^Sl. However, this follows from VS'^, V5|^ \= ^Sl 
since T{B) \= VS"!^ by Lemma 15.51 and Lemma 15.31 □ 
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6. Refining Rules by Turning Conclusions into Premises 

Generally the degree of branching of the generated rules is higher than is necessary. Further- 
more, representation of the generated rules involves the additional symbols of the language 
FO{C) creating a syntactic overhead which may not always be justified. To address these 
problems in this section, and the next, we introduce two techniques for refining the gener- 
ated rules. 

The first technique reduces the number of branches of a rule by constraining the rule 
with additional premises and deriving fewer conclusions. Suppose r is a tableau rule in a 
sound and constructively complete tableau calculus T^. Suppose r has this form. 

def ^0 

r = j j . 

Xl I • • • I Xm 

Let Xi = {ipi, . . . , V'fc} be one of the denominators of the rule r for some i G {1, . . . , m}. 
Without loss of generality we assume that i = 1. 

Consider the rules rj with j = 1, . . . ,k defined by 

^ def Xq U {^Ipj} 
■' X2 \ • • • \ Xm 

Each Tj is obtained from the rule r by removing the first denominator Xi and adding the 
negation of one of the formulae in Xi as a premise. We can drop any domain predication 
equalities from the numerator when they are not necessary. 

Let r denote a rule in Tl- We denote by ref(r, T^) the refined tableau calculus obtained 
from Tl by replacing the rule r with rules ri, . . . , r^. It is clear that the calculus ref(r, Tl) is 
sound. In general, ref(r, T/^) is however not constructively complete. Nevertheless, analysis 
of the proofs of Lemma 15.51 and Lemma 15.31 shows that the following theorem is true. 

Theorem 6.1. Let Tl be a tableau calculus generated from a well-defined specification Sl 
of the logic L. Let r be the rule X^/Xi | • • • | Xm in Tl and suppose ref(r, Tj,) is a refined 
version ofTL- Further, suppose B is an open branch in a rBi{r,TL) -tableau derivation and 
for every set Y of C- expressions from B the following holds. 

If all expressions in Y are reflected in I{B) then for every Ei, . . . ,Ei (zY, 

Xo{Ei, ...,Ei,ti,...,tn)^B implies 

X{B) \= Xi{Ei, ...,Ei, \\ti\\,. . . , \\tn\\), for some i = l,...,m. 

Then, B is reflected inX[B). 

Roughly, condition ([f]) says that the replaced rule r is admissible in the model T{B) as- 
sociated with B constructed using the refined calculus ref(r, Tl)- An immediate consequence 
is the following. 

Corollary 6.2. // the condition of Theorem lg.il holds for every open branch B of any 
rei{r,TL) -tableau derivation then the refined calculus ref(r, T^) is constructively complete. 

Generalising this refinement to turning more than one denominator into premises is 
not difficult. Theorem 16.11 can be reformulated to accommodate this generalisation and the 
formulation of Corollary 16.21 does not change then. 
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We observe that the condition ([f]) is imphed by the following condition: 

if Xq{Ei, ...,Ei,ti,...,tn) and I{B) ^ Xi{Ei, ...,Ei, \\til 

then Xi{Ei, . . . , Ei,ti, ■ ■ ■ ,tn) ^ B, for some i = 2, . . . ,m. 

This follows by an induction argument on the well-founded ordering -<. 

For example, consider the generated rule for negative occurrences of the existential 
restriction operator given in Section HI 

-^ui{3r.p,x), y^y 

-^U2{r,x,y) I ^vi{p,y) 

In most description logics it can be replaced with the more often seen rule: 

In such cases, condition ^ has the following form. 

If -^vi{3E.F,t) G B and T{B) ^ V2{E,t,t') then ^vi{F,t') G B. 

For description and modal logics such as SO the proof of this condition is typically part 
of the proof of the completeness theorem for the calculus which is standardly proved by 
induction on the well-founded relation -< (or equivalently, by induction on the way formulae 
are derived on a branch). For SO condition ^ can be proved separately and implies that 
condition ^ is true for every branch of the refined tableau. Thus, this rule refinement 
preserves constructive completeness. 

The default equality rules (given in Figure [2]) added to every generated calculus are 
already in refined form. The rules that would be produced from the semantic specification 
of equality in Figure [T] have a different form. For example, the congruence rule 

Vn{P,x), Xj^yj 

{Pj , . . . , Xi—\ , yi , , . . . , X-ri) 

is a refined form (obtained in two steps) of the following rule: 

p ^ p, Xi ~ Xi, . . . , Xn ~ Xfij yi ~ yi 



^Un{P,x) \xi^yi I Vn{P,Xi,...,Xi-i,yi,Xi+i,...,Xn) 

Transitivity of a role r provides another example where rule refinement converts the 

rule 

r K, r, X ^ X, y ^ y, z ^ z 



^U2ir,x,y) I -.z/2(r,y, z) | U2{r,x,z) 

into the more familiar rule 

i/2{r,x,y), i^2{r,y,z) 
V2{r,x,z) 

Condition ([f]) holds in this case since it follows from the definition of T{B) that X{B) reflects 
all atomic formulae of the form V2{r^x^y) for any role symbol r in the branch B. 

As a negative example let us consider the possibility of replacing the rule for disjunction 

Vl{pUq,x) 
vi{p,x) 1 vi{q,x) 

by this rule. 

viiplAq.x), ^viip,x 



(u) 
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In KE tableau calculi this rule is used together with an analytic cut rule [16]. This raises 
the question whether a cut rule is essential for completeness and whether the ([OJ-rule alone 
would suffice instead of (p|) . 

Consider a tableau calculus T without any other rules to decompose positive occurrences 
of disjunctions except the standard rule (Q. Suppose T' is the calculus where the ([Djl -rule 
has been replaced by the ([Lpjl -rule. That is, T' = re\{IQ),T). Examination reveals that 
condition ([f]) in Theorem l6 . 1 1 does not hold for T'. Given a formula ui^pUq, a), the branch Bq 
containing only h'i(p\Jq, a) is fully expanded. The interpretation X{Bq) constructed from Bq 
as defined in the previous section reflects the expressions p and q. The instantiation of the 
premise of the dOj-rule with the expressions p and q belongs to the branch Bq, that is, 
z/i(pUg, a) G Bq, but T{Bq) ^ vi{p,a) and liBo) ^ o). This means condition ^ fails 
for Bo and Y={p, q}. 

The following example shows that T' is in fact incomplete. Let Bi be the branch with 
formulae i/i(-ipU -^q,a),i'i{p,a),i'i{q,a). The branch is fully expanded, because the (juj- 
rule is not applicable. However the formulae are unsatisfiable. This is why KE tableau 
calculi typically contain an analytic cut rule for completeness. 



7. Refinement based on Exploiting the Expressivity of the Logic 

In some cases, the object logic L is expressive enough to represent its own semantics. For 
example, in the case of standard modal logics, any Kripke frame condition can be encoded if 
a slightly more expressive hybrid modal language is used [H |9] . This phenomenon leads us to 
consider a second kind of refinement, where all 'holds' predicates i/i, . . . , z/jv and additional 
predicates of FO{C) are expressible via validity of special expressions of the primary sort 
(concepts) of the object logic. 

What does it mean for logic L to be expressive enough to represent its own semantics? 
Assume that for every n = 0, . . . , and every n-ary predicate constant P occurring in the 
specification Sl-, there are expressions 

C7+(p,£i,...,4), C-(p,^i,...,£„), D+{h,...Jn) and Dp{h, . . . ,1^) 

of the primary sort (concepts), depending on variable p of sort n and individual variables 
ii, . . . ,£n of sort 0, such that the following all hold. 

ysLh^^{Mc^[{p,h,---Jn),x) ^Mp,Mh),...,Min))) (7.1) 

ySLh^xh{Cn{P,h,..-Jn),x) ^^Un{p,Mh),...,M^n))) (7.2) 

V5l h Vx {iJi{D+{h,- ■ ■ , en),x) ^ PiMh), . . . , M^n))) (7.3) 

ySL h Vx {MDpih, . . . ,4),x) ^ ^P{Mh), M^n))) (7.4) 

It is worth noting that because the equality theory is included in the specification Sl the 
following also hold: 

^Sl N Vx {ui{D^{h,i2),x) ^ Mh) 76 1^0(^2)) . 

If there are expressions such that (|7.ip - (j7.4p are true it is possible to express all tableau 
rules in Tl in the object language C itself as follows. 
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Let e be a one-to-one mapping of domain variables to variables of sort 0. Now we 
only need to replace every positive occurrence of f„(£', xi, . . . ,Xn) in Tl with the concept 
C^{E,e{xi), . . . ,e{xn)), every (negative) occurrence of ^Vn{E,xi, . . . in Tl with the 
concept C~{E,e{xi)^ . . . Similarly, all predicate constants P need to be replaced 

with occurrences of Dp or DJ, depending on the polarity of P. Then the domain sort 1 
of the meta-language FO{C) is reflected by the sort 0. 

A small technical complication is caused by functions in FO{C) (Skolem functions and 
Skolem constants, in particular) occurring in the generated tableau rules. For them there 
may not be corresponding function symbols in the object language C This can be addressed 
by introducing new connectives fg into C for every function g (including constants) of FO{C) 
so that for any pi, . . . ,Pm,^i, ■ ■ ■ An-, the term fg{pi, ■ ■ ■ ,Pm,h, ■ ■ ■ ,^n) is of sort and its 
semantics is defined by 

MfgiPl^ - ■ ■ ^Pm,h, - ■ ■ Jn)) = g{pi, . . . ,Pm,Mh), ■ ■ ■ ,M^n))- 

An alternative is to introduce unique, new individual constants (for every pi,...,pm,, 
£i, . . . ,in) instead of new connectives. 

If T is a tableau calculus for the logic L we denote by tr(r) the refined tableau calculus 
obtained by replacing every positive occurrence of UniE-iXi, . . . ,Xn) in Tl by the concept 
C+(£;,e(3;i), . . . ,£(x„)), every occurrence of ^Vn{E,xi, . . . ,x„) by C~{E,e{xi), . . . ,e(x„)), 
every positive occurrence of a predicate constants P by Dp, every negative occurrence of a 
predicate constants P by Dp, and every function g with the new connective fg. 

Theorem 7.1. Let T he a sound and complete tableau calculus for a logic L. If there are 
expressions such that jZ ip - fZ^P then \x[T) is sound and complete. If, in addition, T is 
constructively complete then tr(T) is also constructively complete for L. 

To illustrate the refinement introduced in this section we enrich the object language 
of SO with an additional connective. In particular, we add the colon connective :, with 
sort (0, 1,1), defined by: 

Vx ■.p,x) = ui{p,i'o{£))). 

We also introduce connectives which correspond to Skolem functions into the object lan- 
guage. 

This allows us to find object expressions for defining the predicates ~, i^i and 1^2 in the 
language of the logic: 

Ct{p,i) = £:p, C^{p,i) = i:^P, 

C+{r,£i,i2) = £1 : 3r.{£2}, C^{r,£i,£2) = £1 : -3r.{^2}, 

DUh,£2) = £1 ■■ {£2}, DZ{£i,£2) = £1 : ^{£2}. 



This means the notation of the tableau calculus can be refined and simplified. The refined 
and simplified rules are given in Figure HI Comparing Figure [3] and Figure H] we can see 
that the refined formulations of the rules 

yi{{£},x) ^vi{{£},x) ui{-^p,x) 

uq{£) f» x vq{£) 96 X -.1/1 (p,x) 
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Decomposition rules: 

i:^^p i:{pUq) £:^(pU 



£ : p £ : p \ i : q £ : -ip, £ : ->q 

£ : 3r.p £ : -^3r.p, £ : 3r.{£'} 



£ :3r.{f{r,p,£)}, fir,p,£):p £' : ^p 

Transitivity rule: 

£ : 3r.{£'}, £' : 3r.{£"} 
£ : 3r.{£"} 

Equality congruence rules: 

£ : {£'} £ : ^{£'} £ : p £ : ^3r.{£'} £ : p, £ : {£'} 
£' : {£} £' : {£'} £ : {£} £' : {£'} V7]) 

£:3r.{£'}, £':{£"} f{r,p,£):{f{r,p,£)}, £:{£'} 
£:3r.{£"} f{r,P,£):{f{r,p,£')} 

Closure rule: 

£ : p, £ : ^p 
I 



Figure 4: Refined tableau rules for SO. 



are all redundant and can be removed from the refined tableau calculus since their premises 
coincide with the conclusions. Furthermore, the refined equality congruence rules equival- 
ently reduce to a smaller set of rules. For instance, the refined rule of transitivity of the 
equality 

£:{£'}, £':{£"} 
£ : {£"} 

can be derived from the following rules. 

£ : {£'} £:p, £ : {£'} 

£' : {£} ¥T]) 

Finally, the closure rule for equality is subsumed by the usual closure rule. 

By Theorems 16.11 and 17.11 the rules in Figure H] provide a sound and (constructively) 
complete labelled tableau calculus for the logic SO. 



8. Termination through Unrestricted Blocking 

We say a tableau calculus T is terminating (for satisfiability) iff for every finite set of 
concepts S every closed tableau T{S) is finite and every open tableau T{S) has a finite 
open branch. 

For some logics, for example, modal logic K, the synthesised tableau calculi are ter- 
minating but in general they are not. In order to guarantee termination, various blocking 
mechanisms have been developed. Generally one can distinguish between at least three 
kinds of blocking techniques: those that reuse domain terms, those that are based on case 
analysis over conjectured equality constraints between domain terms and equality reas- 
oning, and specialised loop checking mechanisms. Approaches based on reusing domain 
terms have been used for minimal model generation for classical logic |1H I12j. Approaches 
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based on conjectured equality constraints include [TjlMlES]. Loop checking mechanisms 
are based on comparing sets of concepts (expressions of sort 1) labelled by the same domain 
terms (or individuals) with minimal equality reasoning and without explicitly conjectured 
equality constraints and backtracking. Several such loop checking mechanisms have been 
developed for different modal and description logics, but also hybrid logics and other lo- 
gics [23 El [SI lini Ell- 
in this section we adopt the unrestricted blocking mechanism of [32] to obtain termin- 
ating tableau calculi. An alternative that could also be used is blocking through reusing 
domain terms, but this would have required changing the rules of the calculus. Both unres- 
tricted blocking and blocking through reuse of terms are less specialised and more generic 
than standard loop checking mechanisms. 

Though introduced for deciding expressive description logics with role negation, the 
applicability of the unrestricted blocking mechanism is not limited to description logics |33] . 
It provides a powerful method for obtaining tableau decision procedures for logics with the 
effective finite model property (with respect to their semantics). 

A logic L has the effective finite model property iff there is a computable function /i, 
with the set of all finite sets of concept expressions as domain and a subset of the set of 
natural numbers as range, such that the following holds: For every finite set of concept 
expressions 5, if 5 is satisfiable in an L- model then there is a finite L- model for S with the 
number of elements in the domain not exceeding ju(5). 

The unrestricted blocking mechanism is based on adding the following rule, called the 
unrestricted blocking rule, to a sound and complete tableau calculus. 

\ I^f'J'^) 

X ^ y I X ji y 

In our context the idea is that the rule conjectures whether pairs of domain terms (of 
sort + 1 in F0(£)) on the current branch are equal or not. In the left branch two 
such terms are conjectured to be equal. If this leads to a contradiction then they cannot be 
equal, which is the information carried by the right branch. The rule is generally sound, thus 
adding it to any sound and (constructive) complete tableau calculus preserves soundness 
and (constructive) completeness. 

For termination it is crucial to impose additional restrictions on the application of the 
rules in the tableau calculus that introduce new domain terms to the derivation. This is 
achieved by defining an ordering < on terms and imposing conditions ((H]) and (ci2]) below 
on the calculus. 

In particular, let < be an ordering of terms of the domain sort A^+1 in the branch which 
is a linear extension of the order of the introduction of the terms during the derivation. That 
is, t < t' , whenever the first appearance of term t' in the branch is strictly later than the 
first appearance of term t. The mentioned conditions are: 

(cl) If t ~ t' appears in a branch and t < t' , then possible applications of any rules to 
formulae with the term t' producing new terms of the domain sort are not performed. 

(c2) In every open branch there is some node from which point onwards before any applica- 
tion of any rules which produce new terms of the domain sort all possible applications 
of the (jub|) rule have been performed. 



Condition (c[T]) specifies that term-producing rules may only be applied to formulae where 
the domain terms are the smallest representatives in their equivalence classes. The positive 
rule for 3 • .• is the only term-producing rule in the calculus for SO. Condition (ci2]) says 
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that at some point in a branch the unrestricted blocking rule has been applied exhaustively 
before the application of term-producing rules. 

For a tableau calculus T we denote by T + (jubp a tableau calculus obtained from T by 
adding the above blocking mechanism based on the unrestricted blocking rule. 

According to [33], one of the prerequisites for termination of the calculus T + (jubp 
is the subexpression property of T. Let ^ be a reflexive and transitive ordering on C- 
expressions. Following [33], we say that a tableau calculus T is compatible with sub^, 
or has the subexpression property with respect to ^, iff for every set of concepts S, all 
/^-expressions occurring in the tableau derivation T{S) belong to SUb^(5). 

Given a well-defined semantic specification S the process of construction of T from S 
described in Section[l]ensures that every rule of T is monotone with respect to the ordering -< 
induced by S. That is, every /^-expression in each conclusion of a rule is not greater with 
respect to -< than /^-expressions in the premises of the rule. Therefore, we can conclude 
that T has the subexpression property with respect to the reflexive closure of the ordering 
Thus: 

Lemma 8.1. Let < be a reflexive closure of the ordering -< induced by a well-defined 
semantic specification S. Then the tableau calculus T generated from S has the subexpression 
property with respect to 

This property is a necessary condition for termination of the calculus enhanced by the 
unrestricted blocking rule mechanism |32j [33] . Another necessary condition for termination 
is finiteness of sub^. The operator SUb mapping sets of concepts to sets of expressions is 
finite iff SUb(5) is finite for every finite set of concepts S. By Konig's Infinity Lemma, SUb^ 
is finite whenever -< is well-founded and finitely branching. Therefore: 

Lemma 8.2. Let < be a reflexive closure of the ordering -< induced by a well-defined 
semantic specification S. If U S~ is finite then the operator SUb-< is finite. 

Reformulating the main result in [33| in terms of the notation of this paper gives us: 

Theorem 8.3. Let L be a logic and T be a sound and constructively complete tableau calcu- 
lus for a semantic specification Sl of the logic L. Then T+ (jubp is sound and constructively 
complete for Sl- Furthermore, T + (jubp is terminating for L, if the following conditions all 
hold: 

(1) There is a finite closure operator SUb (defined on sets of concepts of the language of L) 
such that T is compatible with SUb. 

(2) L has the effective finite model property with respect to Sl. 

From this theorem and Theorems 15. ![ 15.61 16.11 17.11 and Lemmas 18.11 and 18.21 it follows that 
the extensions of the generated and refined tableau calculi with unrestricted blocking are 
sound and (constructively) complete. Moreover, if it is known that the given logic has 
the effective finite model property with respect to a finite semantic specification then both 
extensions are terminating as well. 

It is well known that SO has the effective finite model property with respect to Sso^ 
and clearly Sso has a finite number of statements. As a consequence, a terminating tableau 
calculus for SO is obtained if the calculus in Figure HI is enhanced with the unrestricted 
blocking mechanism as described above. Using the refinements in Section [Tjthe unrestricted 
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blocking rule can be transformed as follows. 



£ : {I'} \ t : ^{f } 



(ub') 



Let Tso be a tableau calculus comprising of the rules listed in Figure H] and the rule (jubj. 



Theorem 8.4. The calculus Tso sound and constructively complete for SO. Further- 
more, Tso is terminating provided that conditions and are both true for Tso- 
derivations. 

In the calculus Tso-, the imposed conditions ((HJ and (cEJ are restrictions on applications 
of the rule 

^ : 3r.p 

e:3r.{f{r,p,e)}, f{r,p,e):p 
Following [33] , the calculus Tso can be turned into a deterministic decision procedure using 
breadth-first search or depth-first search. 

The calculus Tso presents a new terminating tableau calculus for SO or equivalent 
hybrid logics. The main difference to existing tableau approaches (in a similar style) for SO 
or equivalent hybrid logics is that the individuals (or nominals) are handled differently. To 
force termination typically either equality or subset ancestor loop checking is used, and 
often transitivity is handled by a propagation rule. 



9. Synthesising Tableau Calculi for Intuitionistic Logic 

We consider another example to illustrate the method. Propositional intuitionistic logic IPC 
is a logic where the 'holds' predicates i^i, . . . , z^tv cannot be expressed in the language of the 
logic. It is non-Boolean and provides an example of a logic where the background theory 
interacts with the definitions of the connectives. 

The language of intuitionistic logic is a one-sorted language defined over a countable set 
of propositional symbols p, q,pi,P2, ■ ■ ■, and the standard connectives are V, A, _L. The 
semantic specification S\pc in FO{C) is given by (confer [28j): 

Connective definitions: 

Vx (z^i(-L,x) = _L) 
Vx {vi [p Aq,x) = vi {p, x) Aiyi{q,x)) 
Mx (z^i (p V g, x) = ui {p, x) \/ ui{q,x)) 
Vx (z/i {p -^q,x) = Vy {R{x, y) ^ {vi {p, y) ui {q, y)) ) 

Background theory: 

Vx R{x, x) 
VxVy (-R(x, y) A R{y, x) — )■ x y) 
\/x\/y\/z {R{x, y) A i?(y, z) R{x, z)) 
VxVy {i^i {p, x) A R{x,y) ^ 1^1 {p, y)) 

The connective definitions impose the usual requirements for truth of a formula in a world 
of an intuitionistic Kripke model. For instance, the definition of implication expresses 
in FO{C) the property that an implication of q from p is true in a world x if and only if q is 
true in every successor of x whenever p is true in that successor. R is the domain predicate 
symbol representing a partial order, which is specified by the first three sentences of the 
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Decomposition rules: 

_L 

Vl{pf\q,x) -^Vi{pAq,x) 



Closure rules: 



vi{p,x), i^i{q,x) -.1^1 (p,x) j -.1^1 

i^iip V q,x) ^vi{py q,x) 

vi{p,x) I h'liq^x) ^ui{p,x), -^ui{q,x) 

ui{p^q,x), yfny 
-^R{x,y) I ^vi{p,y) \ Mq^v) 

^i^ijp -» q,x) 

R{x,fip,q,x)), ui{p,f{p,q,x)), ^ui{q, f{p,q,x)) 

Theory rules: 

X ^ X X K. X, y ^ y x^x, y^y, z^z 



R{x,x) -^R{x,y) I ^R{y,x) \ x^y ^R{x,y) \ ^R{y,z) \ R{x,z) 

p^p, x^x, y^y 



^vi{p,x) I ^R{x,y) I iyi{p,y) 

ui{p,x), ^iyi{p,x) R{x,y), ^R{x,y) 

± ± 

Figure 5: Generated tableau rules for intuitionistic logic. 



background theory. The last sentence in the background theory specifies monotonicity of 
the truth of formulae (of sort 1). 

For intuitionistic logic the orderings and -< coincide. The ordering -< on subexpres- 
sions induced by the semantic definition of the connectives is the smallest ordering satisfying 
El -< EiaE2 and E2 -< EiaE2, for each a G {^,V, A} and any intuitionistic formulae Ei 
and £'2- That is, -< is the direct subexpression ordering on intuitionistic formulae. Thus, 
the closure operator sub^ induced by the reflexive closure ^ of the ordering -< is finite. 

The tableau rules generated from the specification S\pc are those listed in Figure El 
Together with the equality rules of Figure [21 they form a calculus, which is sound and 
constructively complete for intuitionistic logic. This is a consequence of Theorems 15.11 
and 15.61 

Refining the generated rules yields the rules listed in Figure El Using Theorem 16.11 we 
conclude that together with the equality rules these rules provide a sound and constructively 
complete tableau calculus for intuitionistic logic. We denote this calculus by Tipc- 

Similarly to the case of SO, because intuitionistic logic has the effective finite model 
property, by Theorem 18.31 together with Lemmas 18.11 and 18.21 a terminating tableau cal- 
culus for IPC is obtained if the calculus T\pQ is enhanced with the unrestricted blocking 
mechanism. 

Theorem 9.1. The tableau calculus T\pQ + ()ubp is sound, constructively complete and 
terminating for IPC. 

Following [33], T\pQ + (jubj) can be turned into deterministic decision procedures for IPC 
using breadth-first search or depth-first search. 



28 



R. A. SCHMIDT AND D. TISHKOVSKY 



Decomposition rules: 



_L 1^1 (p, 2;), i'i{q,x) ^iyi{p,x) I ^iyi{q,x) 

vi{py q,x) -^ui{pVq,x) vi{p ^ q,x), R{x,y) 



Mp^^) I Mq^x) ^ui{p,x), ^ui{q,x) ^vi{p,y) I i^iiq.y) 

q,x) 

R{xJ{p,q,x)), Mp,f{p,q,x)), ^vi{q,f{p,q,x)) 

Theory rules: 

X R{x,y), R{y,x) R{x,y), R{y,z) R{x,y) 

R{x,x) x^y R{x,z) '^i{p,y) 

Closure rules: 

ui{p,x), ^iyi{p,x) 
± 

Figure 6: Refined tableau rules for intuitionistic logic. 

10. Discussion and Conclusions 

The method introduced in this paper automatically produces a sound and constructively 
complete tableau calculus from the semantic first-order specification of a many-sorted logic. 
The method is directly applicable to many non-classical logics and covers many types of 
ground tableau calculi commonly found in the literature. 

On one hand, the formalisation is based on ideas used in the implementation of tableau 
decision procedures for modal and description logics in the MetTeL system [35l |36] . The 
MetTeL system provides a core for tableau derivations, which does not depend on a lo- 
gical language. Due to this language flexibility, without any modification of the core code, 
the prover constructs (sound, complete, and terminating) tableau derivations for standard 
modal logics, superintuitionistic logics (via the Godel translation), many description logics, 
as well as for logics of metrics and topology for which it was originally written. Termination 
is achieved via an implementation of generalisations of standard blocking mechanisms as 
well as the unrestricted blocking mechanism. This means that MetTeL provides an imple- 
mentation of a tableau decision procedure for description logics with full support of the role 
negation operator, which can not currently be handled by other tableau-based description 
and modal logic theorem provers. On the other hand, the results of this paper provide 
the theoretical foundation for the correct behaviour of tableau algorithms implemented in 
MetTeL. 

More importantly, the results can be viewed as providing a mathematical formalisation 
and generalisation of tableau development methodologies. The formalisation separates the 
creative part of tableau calculus development, which needs to be done by a human developer, 
and the automatic part of the development process, which can be left to an automated 
(currently first-order) prover and an automated tableau synthesiser. In general, there is 
no algorithm for checking that an arbitrarily given binary relation forms a well-founded 
ordering. Therefore the creative part is writing down the semantic specification of the 
object logic so that the conditions of well-foundedness of the orderings -<o and -< hold. The 
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automatic part deals with verification of the first-order conditions (wdl) and (wd3') , and 



the generation of tableau rules from the (well-defined) semantics provided by the developer. 



For common modal and description logics conditions (wdl) and (wd3) are simple to 
check, even trivial in many cases. In fact, a developer usually implicitly formalises the logic's 
semantics S in such a way that S = U S^. This is the case for almost all known logics. 



If the specification of the semantics satisfies S = U then conditions (wdl) and (wd3) 



hold trivially and the orderings and -< coincide. This means the ordering used for the 
specification of the semantics of the logical connectives (which is usually well-founded) is 
enough for tableau synthesis. 

The following are examples of first-order definable logics, which all have a normalised 
and well-defined semantic specification according to the definitions in Section [3) 

• most description logics, including ACCO, SO, ACBO ^32], SHOZQ t24j; 

• most propositional modal logics, including K, K4, S4, KD45, S5; 

• propositional intuitionistic logic [28] and many Kripke-complete propositional superintu- 
itionistic logics; 

• the logic of metric and topology [27] . 

This paper also presents a general method for proving (constructive) completeness of tableau 
calculi. In addition, the generated rules can be transformed to the rules with lower branching 
factors provided that condition ([f]) has been proved by induction on the ordering -< for the 
refined calculus. 

With enough expressivity for representing the basics of the semantics within the logic 
it is possible to simplify the language of the tableau calculus. In this case, the obtained 
calculus is similar to tableau calculi for description logics with singleton concepts, but also 
hybrid modal logic [lOj and labelled tableau calculi |T8l|21]. Otherwise, the calculus has 
the same fiavour as standard tableau calculi for intuitionistic logic, where every node in a 
tableau derivation is characterised by two complementary sets of true and false formulae 
(concepts). 

That the generated calculi are constructively complete has the added advantage that 
models can be effectively generated from open, finished branches in tableau derivations. 
This means that the synthesised tableau calculi can be used for finding models. If the 
calculus includes the unrestricted blocking mechanism various strategies on the application 
of the unrestricted blocking rule can be employed for obtaining models with minimal domain 
sizes. 

As case studies we considered tableau synthesis for propositional intuitionistic logic 
and the description logic SO with singleton concepts and transitive roles. We believe the 
approach is also applicable to most known, first-order definable modal and description logics 
including the ones mentioned above. Non first-order translatable logics such as propositional 
dynamic logic are currently beyond the scope of the method. 

The tableau calculi generated are SmuUyan-type tableau calculi, that is, ground se- 
mantic tableau calculi. We believe that other types of tableau calculi can be generated 
using the same techniques. We expect that generating unlabelled tableau calculi without 
explicit background predicates or domain terms will be possible, at least to some extent, 
but this is not immediate. One possibility would be to investigate if these can be derived 
as further refinements of the labelled tableau calculi generated by method presented in this 
paper. Such a line of investigation would be interesting and shed more light on the rela- 
tionship between different kinds of tableau calculi. Exploiting the known relationships to 
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other deduction methods we expect synthesis of non-tableau approaches is possible as well, 
but all this is future work. 

Further investigations are needed to explore the extension of the framework to generate 
calculi based on propagation rules which incorporate frame correspondence properties into 
the definition of connectives to replace the theory rules for modal and description logics 
(for example, transitivity for the logic SO). It is clear though that this is a much harder 
problem because guaranteeing completeness becomes more difficult. It is also clear that no 
results at the same level of generality as for the use of theory rules in this paper can be 
expected. 

A future goal is to further reduce human involvement in the development of calculi by 
finding appropriate automatically verifiable conditions for refined calculi to be generated. 

We plan to implement the methodology as an automatic generator of tableau calculi. 
This will give users the ability to obtain tableau calculi very easily and without needing 
to have relevant knowledge of tableau-based reasoning or experience in developing tableau 
calculi. Combined with a prover engineering platform such as LoTREC [19j or the Tableau 
Workbench [1] there is even the potential to build systems that would allow users to get im- 
plemented provers from the specification of logics. LoTREC and the Tableau Workbench 
are generic systems for building tableau-based theorem provers for non-classical logics. Cur- 
rently they allow users to define tableau procedures by flexibly specifying the set of tableau 
rules, the search strategies, the blocking technique and the optimisation techniques to be 
used. This is then compiled into a specialised prover for the specified procedure. Enhanced 
with the tableau synthesis methodology, such systems could allow the user to define just 
the logic and produce an implemented prover for this logic. 
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